Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIGMA/gUk-OBsEE6oDIESnknna3BS0TiA.roa
File: gUk-OBsEE6oDIESnknna3BS0TiA.roa (raw, json)
Hash identifier: uoDpdfHqIhJ4LiqtY+M19aiHHy1Hq0SGkNjWo9uOEsE=
Subject key identifier: 81:49:3E:38:1B:04:13:AA:03:20:44:A7:92:79:DA:DC:14:B4:4E:20
Certificate issuer: /CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Certificate serial: 0D59
Authority key identifier: 3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/gUk-OBsEE6oDIESnknna3BS0TiA.roa
Signing time: Mon 10 Feb 2025 14:12:17 +0000
ROA not before: Mon 10 Feb 2025 14:12:17 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18419
IP address blocks: 103.234.204.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3417 (0xd59)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Validity
Not Before: Feb 10 14:12:17 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=81493E381B0413AA032044A79279DADC14B44E20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:83:ba:1c:44:0f:50:51:92:4c:ab:88:df:60:
3b:3e:43:fd:8d:3d:0d:37:c7:eb:17:54:58:11:56:
f2:6e:2e:b4:53:6e:f9:6e:cb:54:34:4a:a8:f7:33:
fb:f6:04:d9:98:2e:62:f1:b3:43:f5:64:a2:56:c2:
5e:27:8d:35:39:d6:e9:1f:0f:a0:97:77:75:e9:7d:
2f:34:51:3d:11:25:08:47:bd:af:62:f9:cb:c5:61:
bd:13:57:93:b6:9c:93:f8:ce:a8:93:58:64:56:d7:
8f:e5:ac:36:d1:de:a3:35:7b:40:f9:13:07:1e:83:
dc:48:a2:cf:f9:c1:a2:48:bc:9e:33:f7:bb:1f:9d:
32:95:89:bc:a2:1d:6f:23:9e:49:db:9e:ac:3d:35:
9e:8d:32:4a:3e:14:f9:d2:76:db:10:1d:8c:e4:a9:
bb:e4:2c:4a:3f:f5:3d:9a:6a:a1:07:05:6f:9c:0b:
de:f0:48:ed:52:c1:21:7f:6f:25:ec:6e:2c:da:8d:
36:19:45:1b:9a:39:b6:d3:00:66:1c:9c:22:60:f1:
ea:5f:90:e1:42:bd:29:af:f4:10:57:19:1e:ca:8b:
ae:d2:58:64:b3:74:00:82:8f:cf:a3:9f:56:0c:35:
b6:df:08:53:97:68:34:48:6a:b5:31:e5:13:fb:8e:
f5:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:49:3E:38:1B:04:13:AA:03:20:44:A7:92:79:DA:DC:14:B4:4E:20
X509v3 Authority Key Identifier:
keyid:3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/gUk-OBsEE6oDIESnknna3BS0TiA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.234.204.0/22
Signature Algorithm: sha256WithRSAEncryption
5b:34:c0:d2:c2:b3:12:88:a5:48:3a:a0:cb:74:51:cd:50:8d:
71:c0:0d:56:06:a0:7f:e9:0c:5d:44:e1:88:e5:2c:a2:99:70:
e6:4e:1a:c2:dd:52:4f:94:7d:cb:59:95:1d:c1:fd:50:28:92:
52:0e:9a:26:6b:ad:29:f7:8d:1e:cd:c2:69:1a:1d:43:1f:12:
a5:aa:22:26:5d:de:51:18:1e:11:d8:75:c5:50:c1:57:49:06:
cb:1b:37:fa:b9:20:a0:2f:5c:de:dd:6d:a1:86:c1:1f:be:d2:
b9:8b:db:56:c4:41:e5:f2:59:cc:e8:2c:d8:35:3b:bb:94:dd:
73:d8:be:47:4a:e2:4a:2a:38:73:39:39:80:53:64:b9:39:4d:
38:c5:58:09:b6:32:cd:7c:cb:18:62:16:b7:ac:9f:b9:0e:af:
05:ca:90:23:bf:bf:bb:18:1a:6d:95:9a:48:43:a2:4a:d3:69:
80:70:7a:ad:13:98:74:fe:e2:9e:a0:06:7a:da:9d:e8:80:b1:
c9:99:c4:34:b8:d4:07:be:0e:8a:3d:60:5b:67:94:89:ad:04:
f5:0d:96:ea:fc:55:df:e5:c7:ca:4b:4e:55:cd:84:8c:88:b5:
52:7d:cf:75:3f:1f:ec:21:69:41:2c:7f:bc:06:86:35:91:57:
07:5a:cc:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 08:04:34 2025 by rpki-client